July 2017
Beginner to intermediate
378 pages
10h 26m
English
Content preview from Analytics for the Internet of Things (IoT)
Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
Start your free trial
What is a bastion host?
Bastion hosts are EC2 instances located in a public subnet on your VPC. They are accessed using SSH (if you're using Linux OS) from outside your VPC (that is, your laptop). Once you are connected remotely, it then can function as a jump server. This allows you to use SSH to connect from the bastion server to an EC2 instance or other resource in your private subnets.
A bastion host gives you a secure route to connect to your private subnet resources. A VPC is a walled garden; you have to create a path to access the delights inside. Bastion hosts provide a secure way to do this. Hosts should only allow SSH traffic and only from source locations that you trust. They are secured through the use of security groups and network ...